diff --git a/oidc_provider/lib/endpoints/userinfo.py b/oidc_provider/lib/endpoints/userinfo.py
index 3a7a48c..61e10e5 100644
--- a/oidc_provider/lib/endpoints/userinfo.py
+++ b/oidc_provider/lib/endpoints/userinfo.py
@@ -45,6 +45,9 @@ class UserInfoEndpoint(object):
         try:
             self.token = Token.objects.get(access_token=self.params.access_token)
 
+            if self.token.has_expired():
+                raise UserInfoError('invalid_token')
+
         except Token.DoesNotExist:
             raise UserInfoError('invalid_token')