Where is the RSA public key?

I’m trying to understand how to validate an RS256 JWT. This guide says I need the RSA public key for this, which I can obtain from application > settings > advanced settings > certificates > signed certificate > public key.

But this field does not exist, at least for me. The fields under certificates that I have are:

  • signing certificate (contains a cert beginning -----BEGIN CERTIFICATE----
  • signing certificate fingerprint
  • signing certificate thumbprint

Hi @kkrp1,

Thanks for reaching out to the Auth0 Community!

To verify the signature of a token from one of your applications in RS256,

We recommend that you get the Public Key from your tenant’s JWKS here: https://{yourDomain}/.well-known/jwks.json

Reference:

Please let me know if you have any questions.

Thanks,
Rueben

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.