I've done similar to Aakash, except I use sessionStorage to keep the token. Then, I have a componentWillMount() on security critical views that sends the token to the server for verification, and redirects if it's expired.
Comment by Ronald Roe on "how to do authentication with react-router-dom /react-router ?" | Hashnode