Header and payload for a Kubernetes JWT. Run these through jwt.io and change values to produce new ones, if you can pull stuff from kubectl get secrets

{ "alg": "RS256", "kid": "" }

{ "iss": "kubernetes/serviceaccount", "kubernetes.io/serviceaccount/namespace": "default", "kubernetes.io/serviceaccount/secret.name": "default-token-xxxx", "kubernetes.io/serviceaccount/service-account.name": "default", "kubernetes.io/serviceaccount/service-account.uid": "<UID>", "sub": "system:serviceaccount:default:default" }