Only by uninstalling them first.
DevMenu 2.x can overwrite them for some reason though.
You can no longer get code execution under the ro module, which was the point of rohax. I'm not sure how much use being able to load unsigned CROs is with the new checks in place.
Interesting theory. Downgrading that way should work if FBI does. I'm kind of doubting that FBI will work right away on 9.3+ though, if it's at all possible. It must be relying on some sort of exploit, as NINJHAX does not get permission to the "am" service which FBI uses. I can't find the exploit loader in the source code though, which is strange.
Porting over a CFW won't be easy, or maybe even possible, the ARM11 kernel exploit (memchunkhax) was fixed in 9.3 and the ARM9 kernel exploit (firmlaunchhax) was fixed in 9.5, current CFWs (apart from NTR-CFW, that only uses ARM11) rely on both to work.
But we wouldn't need to if we could downgrade, and it takes far less permissions to run a CIA installer than a CFW, so it is plausible for the future.