Asr1000-rommon.173-1r.spa.pkg Jun 2026

A: No. You cannot boot IOS-XE from a ROMMON .pkg file. You must still specify an IOS-XE .bin or packages.conf in BOOT variable. The ROMMON only loads that.

Ensure you are using the official, signed .SPA.pkg file from Cisco.

rommon 1> boot bootflash:asr1000rp1-adventerprisek9.17.03.04a.SPA.bin Use code with caution. Firmware Rollback

The filename asr1000-rommon.173-1r.SPA.pkg is structured to provide specific information at a glance: asr1000-rommon.173-1r.spa.pkg

Execute the upgrade command using the system upgrade syntax. Specify the target slot where the Route Processor resides (usually slot R0, or R1 for redundant control planes).

Before initiating the upgrade, gather system data to ensure a smooth deployment. Run these commands from the Cisco IOS XE Exec prompt: 1. Check Current ROMMON Version Router# show platform | include ROMMON Use code with caution.

Expected output: ROMMON Version: 173-1r

Cisco published a security advisory (cisco-sa-rommon-secboot-7JgVLVYC) regarding a vulnerability in the Cisco IOS XE ROM Monitor Software for ASR 1000 series routers among other platforms. This vulnerability could potentially allow an unauthenticated, physical attacker to break the chain of trust and load a compromised software image on an affected device. Cisco released software updates to address this vulnerability.

ROM: ROMMON version 15.6(1r)S2

Delete the corrupted file using delete bootflash:asr1000-rommon.173-1r.spa.pkg , clear the file system recycle bin using squeeze bootflash: , and re-download the package using a reliable transfer protocol like SCP or SFTP. Router Fails to Boot (Stuck in ROMMON Prompt) The ROMMON only loads that

Provides a basic command-line interface (CLI) to manually boot images or recover the system if the primary IOS XE image becomes corrupted. Key Features of Release 17.3(1r)

The ROM Monitor (ROMMON) is the bootstrap program that initializes the hardware and boots the Cisco IOS XE operating system on Cisco ASR 1000 Series Aggregation Services Routers. Keeping this firmware updated ensures system stability, fixes critical hardware-level bugs, and enables compatibility with newer Cisco IOS XE software releases.