your code for the JWT Token, not for SDK JWT Token (change time from ms to sec is not enough)
here is link to a php solution
and here the reference implemention in js
here you can check the signature token